Bank of Cyprus Public Company Limited – €25,000 Fine (Cyprus, 2025)
General GDPR enforcement action
This case relates to broader data protection obligations, not specifically to cookie or consent banner compliance. It is not included in cookie statistics or the Risk Calculator.
The Bank of Cyprus was fined for not having enough security measures in place, which led to a data breach. The Cypriot data protection authority found that the bank failed to protect personal data adequately. This ruling highlights the need for financial institutions to prioritize data security.
What happened
The Cypriot DPA fined the bank for failing to implement adequate technical and organizational measures to ensure data security.
Who was affected
Customers whose personal data was exposed during the data breach.
What the authority found
The authority ruled that the bank did not meet the necessary security standards required under GDPR, leading to the data breach.
Why this matters
This case serves as a warning for financial institutions to strengthen their data protection measures. Companies must ensure they have robust systems in place to safeguard personal information.
GDPR Articles Cited
View original scraped data
Original data from scraper before AI verification against source document.
The Cypriot DPA has imposed a fine of EUR 25,000 on the Bank of Cyprus Public Company Limited. The controller failed to implement adequate technical and organisational measures to ensure data security, resulting in a data breach.
Related Enforcement Actions (0)
No other enforcement actions found for Bank of Cyprus Public Company Limited in CY
This is the only recorded action for this entity in this jurisdiction.
Details
Fine Date
5 August 2025
Authority
Commissioner for Personal Data Protection
Fine Amount
€25,000
About this data
Cite as: Cookie Fines. Bank of Cyprus Public Company Limited - Cyprus (2025). Retrieved from cookiefines.eu
Last updated: